Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/8d3c82-e403-4da6-b315-8790206f0d74/1/YMUWpYsuvPV4Uz2Xe4RDqXoNkvE.roa
File: YMUWpYsuvPV4Uz2Xe4RDqXoNkvE.roa (raw, json)
Hash identifier: B2r9hFs+hH9mXfmVt9F7sA7bBOF1EOaOTCUDcS4NW24=
Subject key identifier: 60:C5:16:A5:8B:2E:BC:F5:78:53:3D:97:7B:84:43:A9:7A:0D:92:F1
Certificate issuer: /CN=41f5a10e4fd2655adbbb40ede18b2615ac558ea9
Certificate serial: 01894AB2B1D2838234F98EA35FC8ED6A9216
Authority key identifier: 41:F5:A1:0E:4F:D2:65:5A:DB:BB:40:ED:E1:8B:26:15:AC:55:8E:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QfWhDk_SZVrbu0Dt4YsmFaxVjqk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/8d3c82-e403-4da6-b315-8790206f0d74/1/YMUWpYsuvPV4Uz2Xe4RDqXoNkvE.roa
Signing time: Wed 12 Jul 2023 15:22:52 +0000
ROA not before: Wed 12 Jul 2023 15:22:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41844
IP address blocks: 94.26.40.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:32:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:4a:b2:b1:d2:83:82:34:f9:8e:a3:5f:c8:ed:6a:92:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41f5a10e4fd2655adbbb40ede18b2615ac558ea9
Validity
Not Before: Jul 12 15:22:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=60c516a58b2ebcf578533d977b8443a97a0d92f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:0a:2c:e4:90:ee:c9:d7:8d:aa:91:d6:10:42:
70:29:57:f4:82:83:ce:44:28:70:d4:1c:a6:63:3e:
cd:a1:0c:6c:07:db:7d:46:88:15:fa:1b:01:80:44:
9f:78:4c:bb:1a:a0:60:7a:b2:ca:c2:57:f0:f8:89:
1a:ee:b3:14:38:32:19:84:f5:2f:eb:c7:5f:c1:0e:
fd:89:0d:11:59:ae:6f:76:dc:91:1d:f8:aa:8c:24:
2a:00:47:7c:a6:06:b2:cd:81:16:16:d2:ea:0e:5b:
bf:8a:ed:ba:cd:1f:d7:c4:a7:ec:31:d8:6f:2c:a7:
ae:f9:f7:af:67:07:9b:8d:2d:b3:ac:2f:2e:88:a9:
4c:b7:70:a5:78:7e:b2:7a:c3:0d:03:62:67:0e:73:
07:68:8e:99:13:8b:dc:e6:19:6b:08:8b:8a:31:41:
47:c9:6d:f3:62:d0:4d:16:8b:f4:f2:0b:44:d4:e8:
a9:f3:a9:44:21:55:a2:a7:cd:29:4f:bc:fe:f5:d1:
3d:f8:7d:53:a4:c3:7d:34:05:ba:55:2b:2b:f0:0a:
e7:c2:bb:3c:86:92:ea:eb:f7:76:ff:bd:ad:a6:d6:
13:d7:8d:52:57:3b:aa:3d:8b:54:e6:54:70:30:f0:
b2:50:40:ec:5f:5d:37:96:40:c3:dd:b0:b6:1b:77:
98:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:C5:16:A5:8B:2E:BC:F5:78:53:3D:97:7B:84:43:A9:7A:0D:92:F1
X509v3 Authority Key Identifier:
keyid:41:F5:A1:0E:4F:D2:65:5A:DB:BB:40:ED:E1:8B:26:15:AC:55:8E:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QfWhDk_SZVrbu0Dt4YsmFaxVjqk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8d3c82-e403-4da6-b315-8790206f0d74/1/YMUWpYsuvPV4Uz2Xe4RDqXoNkvE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8d3c82-e403-4da6-b315-8790206f0d74/1/QfWhDk_SZVrbu0Dt4YsmFaxVjqk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.26.40.0/24
Signature Algorithm: sha256WithRSAEncryption
03:7e:1e:ef:3a:ea:29:c2:6c:8a:d1:be:96:54:8b:c4:6b:3d:
19:b8:ee:1b:d5:81:19:0e:4b:ab:52:3d:70:b4:9a:ba:37:35:
02:45:4f:45:dd:a9:b6:4d:a8:88:8d:a0:0e:0d:9d:da:2d:d3:
88:88:1f:f8:2e:83:35:7c:d7:de:fd:0a:2e:1f:ba:c6:38:c6:
1c:5e:ee:d5:8c:39:e4:e0:12:90:07:ab:ab:76:9d:97:36:d0:
3d:23:fb:ce:84:c8:fa:cd:83:5c:fc:4c:38:63:70:99:0b:fe:
f3:3b:45:cb:39:67:6f:97:11:d7:dc:16:50:5e:a2:c6:41:9f:
9a:1a:79:6b:e4:90:b9:ca:8f:19:86:7f:2a:13:96:5e:9e:c5:
f2:63:d9:15:58:5b:2a:ea:23:64:d4:82:a5:0e:55:c5:0b:cd:
f6:ee:f7:c0:9b:e8:c2:52:3f:28:b5:31:9d:97:b7:9d:db:0c:
d9:45:75:91:e0:4e:d5:24:2c:6a:69:1a:ca:8c:0f:c8:4f:bb:
8c:e7:f8:f6:a0:70:16:d2:7e:c8:c4:ff:9d:9c:95:57:38:a8:
4f:c3:2e:44:56:10:45:ce:74:9e:72:d8:de:eb:e5:c9:d8:d3:
e2:b8:9e:14:70:4e:e4:87:c3:e3:9e:b8:f8:11:02:1c:91:61:
52:c3:ab:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:58 2024 by rpki-client on console-fra.rpki-client.org